Autonomous agent traffic as an emerging attack surface

Wanted to raise something I haven’t seen much discussion about in this community yet. I’ve also been building a tool around this problem and would appreciate technical feedback from people who think about these things for a living. With tools like OpenClaw and Manus going mainstream, web services are seeing a new class of traffic: autonomous AI agents making contextual, multi-step interactions with APIs and endpoints. These aren’t traditional bots following predictable crawl patterns. They understand API schemas, they retry on failure, they chain requests based on previous responses. From the server side, they often look identical to legitimate human sessions. This creates a few problems from a security perspective. First, existing bot detection tools (WAFs, Cloudflare, DataDome) are designed for a different threat model. They’re pattern-matching against known scraper behavior. Autonomous agents don’t fit those patterns, and a lot of them are doing legitimate work, so blanket blocking creates more problems than it solves. Second, there’s no persistent identity for agent traffic. Every request is stateless and anonymous. You can’t correlate sessions, build behavioral profiles, or distinguish a well-behaved recurring agent from a new one probing your endpoints. This is essentially the open relay problem from early email, where any server could send from any address with no verification. SPF/DKIM solved that by adding a sender identity layer to the protocol without changing how email works. Third, because agent sessions look like human sessions, they contaminate analytics and monitoring. I’ve seen this firsthand on a service I run, where usage metrics were significantly inflated by agent activity I couldn’t filter out. I’ve been working on an identity layer for agents based on W3C DID. The idea is that agents present a cryptographic credential when they interact with a service, so operators get persistent identification and behavioral history without requiring PII about the human behind the agent. Free to use: usevigil.dev Is autonomous agent traffic something your teams are modeling yet? Or is it still too early for most orgs to care about? submitted by /u/SenseOk976 [link] [comments]Technical Information Security Content & DiscussionRead More